All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Security
Security
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Edgecution: Malicious Edge Extension Abuses Native Messaging to Escape Browser Sandbox

By

ThreatLabz

13d ago· 7 min readenInsight

Summary

ThreatLabz has uncovered "Edgecution," a malicious attack that uses a rogue Microsoft Edge browser extension combined with a Python script to escape the browser sandbox. The attack abuses Chrome's native messaging feature — which is also supported by Chromium-based Edge — to allow the extension to communicate with a Python script running outside the sandbox, giving it access to the local filesystem and operating system. The article provides a technical breakdown of the initial access vector, how the malicious extension is deployed, and how each component (the Edge extension and the Python bridge) works together to backdoor compromised hosts.

Source

bskyEdgecution: Malicious Edge Extension Abuses Native Messaging to Escape Browser Sandboxzscaler.com

Key quotes

· 3 pulled
The latter serves as a bridge between traditional browser sandboxes that are designed to limit access to the local system.
Chrome-based browsers support native messaging to enable third-party applications to perform activities outside of the sandbox and access the filesystem and operating system.
ThreatLabz exposes Edgecution: a rogue Edge extension that abuses Chrome native messaging to escape the browser sandbox and backdoor compromised hosts.
Snippet from the RSS feed
ThreatLabz exposes Edgecution: a rogue Edge extension that abuses Chrome native messaging to escape the browser sandbox and backdoor compromised hosts.

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.